$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231382e39372e342e302f32342d3234203d3e203130323132.roa File: 3231382e39372e342e302f32342d3234203d3e203130323132.roa (raw, json) Hash identifier: M8uBiDMtnD4Bo5j30uZKOjD624LjetFblMStIIyy+eQ= Subject key identifier: FC:85:66:05:C5:06:D3:72:8A:94:27:91:46:F0:C7:5D:CF:DF:EA:8A Certificate issuer: /CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Certificate serial: 28423DC9DFE4D1E87116318A141906E74F5470BA Authority key identifier: 93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231382e39372e342e302f32342d3234203d3e203130323132.roa Signing time: Tue 28 Apr 2026 01:15:38 +0000 ROA not before: Tue 28 Apr 2026 01:10:38 +0000 ROA not after: Tue 27 Apr 2027 01:15:38 +0000 asID: 10212 IP address blocks: 218.97.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:42:3d:c9:df:e4:d1:e8:71:16:31:8a:14:19:06:e7:4f:54:70:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Validity Not Before: Apr 28 01:10:38 2026 GMT Not After : Apr 27 01:15:38 2027 GMT Subject: CN=FC856605C506D3728A94279146F0C75DCFDFEA8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:46:92:a3:aa:3a:0f:fd:4a:1b:fa:55:91:02: 9e:57:ed:6e:ed:51:0c:67:47:b1:47:50:a8:7c:e8: 7d:24:8f:c6:e9:0f:94:80:14:0e:cb:d3:ec:67:db: 0f:6f:04:41:b4:94:8d:f4:b8:9c:71:b7:96:23:be: 16:85:64:a9:7c:41:be:19:38:1f:02:2c:86:3d:73: 27:fc:ba:cf:1d:ef:66:82:18:7a:03:90:b1:51:75: 0b:e5:3a:46:4f:f7:dc:54:85:d6:6b:7d:ed:d6:a2: bf:43:90:55:2c:7f:98:16:7d:c5:09:6e:ff:cf:a2: b8:1b:35:54:48:ab:39:18:b2:d6:54:fc:c1:5c:7e: 7f:3a:d3:01:c3:b4:97:65:db:61:4b:b3:fa:8a:f3: bf:fb:54:ce:a3:51:84:24:cb:3d:89:fb:df:4d:e2: ef:0d:28:72:25:1f:48:3c:89:74:2a:2a:12:fe:39: 03:33:8a:7a:37:11:1f:b9:1a:8a:09:0a:d5:e4:bc: 53:14:ae:e9:57:84:8c:41:b9:35:73:81:1b:51:55: 77:57:e9:b5:be:15:ed:94:9d:2e:b2:d3:99:dd:4b: 70:13:84:4a:0f:5f:2e:9c:65:02:a8:ba:c8:3d:68: 73:72:80:6a:9a:29:04:a6:21:0c:18:ef:4a:4e:e8: 6c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:85:66:05:C5:06:D3:72:8A:94:27:91:46:F0:C7:5D:CF:DF:EA:8A X509v3 Authority Key Identifier: keyid:93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/3231382e39372e342e302f32342d3234203d3e203130323132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 218.97.4.0/24 Signature Algorithm: sha256WithRSAEncryption 21:c0:c0:3f:43:e5:66:e9:46:a4:88:5d:a0:7b:96:99:f8:be: c0:3e:d5:98:85:80:48:76:6b:54:f8:9f:26:93:e7:eb:b3:d9: d0:3f:94:30:bd:6e:f4:3f:14:c3:b6:1e:6e:82:c7:c0:e4:e3: d0:79:46:c4:44:b3:94:82:08:1b:88:bc:1d:65:2c:52:3b:aa: 9c:92:2b:fc:3a:9c:6d:85:54:bd:b1:f8:9f:9a:ed:be:0d:0b: a6:1d:00:fe:59:3d:3e:29:ed:0a:47:b3:a8:86:0a:ba:0e:05: 18:ea:6a:5b:35:cb:87:2b:86:7f:60:ce:e2:ad:b5:7a:25:45: 46:f4:f8:d0:21:3e:b2:60:96:b1:65:7e:77:68:a6:da:7d:04: 08:0e:cf:cd:1c:7d:79:cd:f5:7c:82:d8:0e:6a:bd:55:bd:43: f5:b2:40:48:4e:fb:ca:7a:3e:d2:83:56:b5:fc:af:e2:b2:98: 13:e5:76:ed:82:8f:91:ef:4f:0f:74:f1:f0:74:46:d0:e3:60: ec:fb:4e:e2:4f:10:c3:f9:0a:57:04:79:57:2d:70:43:7f:0f: 74:ad:2c:ee:96:24:77:a3:32:d7:c9:a4:c8:fb:e2:46:26:97: a4:f4:71:f2:9b:b6:23:8d:9c:71:74:d0:d7:90:47:78:a1:ff: c1:01:d6:65 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUKEI9yd/k0ehxFjGKFBkG509UcLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUx NkYzQTdFRjAeFw0yNjA0MjgwMTEwMzhaFw0yNzA0MjcwMTE1MzhaMDMxMTAvBgNV BAMTKEZDODU2NjA1QzUwNkQzNzI4QTk0Mjc5MTQ2RjBDNzVEQ0ZERkVBOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcRpKjqjoP/Uob+lWRAp5X7W7t UQxnR7FHUKh86H0kj8bpD5SAFA7L0+xn2w9vBEG0lI30uJxxt5YjvhaFZKl8Qb4Z OB8CLIY9cyf8us8d72aCGHoDkLFRdQvlOkZP99xUhdZrfe3Wor9DkFUsf5gWfcUJ bv/PorgbNVRIqzkYstZU/MFcfn860wHDtJdl22FLs/qK87/7VM6jUYQkyz2J+99N 4u8NKHIlH0g8iXQqKhL+OQMzino3ER+5GooJCtXkvFMUrulXhIxBuTVzgRtRVXdX 6bW+Fe2UnS6y05ndS3AThEoPXy6cZQKousg9aHNygGqaKQSmIQwY70pO6GzlAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU/IVmBcUG03KKlCeRRvDHXc/f6oowHwYDVR0j BBgwFoAUkxNmUCC9+V36SqwOHkqajhbzp+8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk2ODc1ODUwOTMwNTg1OC8wLzkzMTM2NjUwMjBCREY5NURGQTRBQUMwRTFFNEE5 QThFMTZGM0E3RUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUxNkYzQTdFRi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTAwOTY4NzU4NTA5MzA1ODU4LzAvMzIzMTM4MmUzOTM3 MmUzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzAzMjMxMzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADaYQQwDQYJKoZIhvcNAQELBQADggEBACHAwD9D5WbpRqSIXaB7lpn4vsA+1ZiF gEh2a1T4nyaT5+uz2dA/lDC9bvQ/FMO2Hm6Cx8Dk49B5RsREs5SCCBuIvB1lLFI7 qpySK/w6nG2FVL2x+J+a7b4NC6YdAP5ZPT4p7QpHs6iGCroOBRjqals1y4crhn9g zuKttXolRUb0+NAhPrJglrFlfndoptp9BAgOz80cfXnN9XyC2A5qvVW9Q/WyQEhO +8p6PtKDVrX8r+KymBPldu2Cj5HvTw908fB0RtDjYOz7TuJPEMP5ClcEeVctcEN/ D3StLO6WJHejMtfJpMj74kYml6T0cfKbtiONnHF00NeQR3ih/8EB1mU= -----END CERTIFICATE-----Generated at Wed May 13 19:36:15 2026 by rpki-client